155 matches found
CVE-2005-1066
Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack...
CVE-2005-1066
Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack...
Pine symbolic links problem
Symbolic links problem in rpdump utility...
[SA14899] Pine rpdump File Creation Race Condition Vulnerability
---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Pine rpdump File Creation Race Condition Vulnerability...
Pine < 4.63 rpdump Symlink Arbitrary File Overwrite
Binary data 2814.prm...
RHEL 2.1 : pine (RHSA-2005:015)
An updated Pine package is now available for Red Hat Enterprise Linux 2.1 to fix a denial of service attack. Pine is an email user agent. The c-client IMAP client library, as used in Pine 4.44 contains an integer overflow and integer signedness flaw. An attacker could create a malicious IMAP serv...
Low: Red Hat Security Advisory: pine security update
An updated Pine package is now available for Red Hat Enterprise Linux 2.1 to fix a denial of service attack. Pine is an email user agent. The c-client IMAP client library, as used in Pine 4.44 contains an integer overflow and integer signedness flaw. An attacker could create a malicious IMAP serv...
CVE-2002-1320
Pine 4.44 and earlier allows remote attackers to cause a denial of service core dump and failed restart via an email message with a From header that contains a large number of quotation marks "...
CVE-2002-1320
CVE-2002-1320 affects Pine (versions 4.44 and earlier). A remote attacker can trigger a denial-of-service by sending an email whose From header contains a large number of quotation marks, causing a core dump and failed restart. The vulnerability is mitigated by upgrading Pine to a fixed version a...
Pine C-Client IMAP Client literal_size Remote Overflow
Binary data 1099.prm...
Pine < 4.58 Multiple Overflows
Binary data 1326.prm...
Mandrake Linux Security Advisory : pine (MDKSA-2001:047-1)
Versions of the Pine email client prior to 4.33 have various temporary file creation problems, as does the pico editor. These issues allow any user with local system access to cause any files owned by any other user, including root, to potentially be overwritten if the conditions were right. Upda...
Mandrake Linux Security Advisory : pine (MDKSA-2002:084)
A vulnerability was discovered in pine while parsing and escaping characters of email addresses; not enough memory is allocated for storing the escaped mailbox part of the address. The resulting buffer overflow on the heap makes pine crash. This new version of pine, 4.50, has the vulnerability...
SUSE-SA:2002:046: pine
The remote host is missing the patch for the advisory SUSE-SA:2002:046 pine. Pine, Program for Internet News and Email, is a well known and widely used eMail client. While parsing and escaping characters of eMail addresses pine does not allocate enough memory for storing the escaped mailbox part ...
RHEL 2.1 : pine (RHSA-2002:271)
A vulnerability in Pine version 4.44 and earlier releases can cause Pine to crash when sent a carefully crafted email. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 Pine, developed at the University of Washington, is a tool for reading, sending, and managing electronic...
RHEL 2.1 : pine (RHSA-2003:274)
Updated Pine packages that resolve remotely exploitable security issues are now available. Pine, developed at the University of Washington, is a tool for reading, sending, and managing electronic messages including mail and news. A buffer overflow exists in the way unpatched versions of Pine prio...
CVE-2003-0720
Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type...
CVE-2003-0721
Integer signedness error in rfc2231getparam from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negative number...
Pine <= 4.56 Remote Buffer Overflow Exploit
Exploit for linux platform in category remote exploits =========================================== Pine eip/ebp this can actually be "bruteforced" I didn't show this since this is a PoC and uses "exact offsets" All u do is supply multiple charsets and overwrite larger areas of memory This makes...
Pine <= 4.56 Remote Buffer Overflow Exploit
No description provided by source. / Mon Sep 15 09:35:01 CEST 2003 remote? Pine = 4.56 exploit by sorbo sorbox yahoo com darkirco Ok won't talk much about the bug since as usual idefense advisories are proper advisories and explain everything... exploiting the bug is trivial after reading the adv...